33 matches found
PT-2020-5866 · Php +9 · Php +9
Name of the Vulnerable Software and Affected Versions: PHP versions 7.2.x through 7.2.33 PHP versions 7.3.x through 7.3.22 PHP versions 7.4.x through 7.4.10 Description: The issue is related to the processing of incoming HTTP cookie values in PHP, where cookie names are url-decoded. This may lead...
Easy Adress Book Web Server Buffer Overflow
Easy Adress Book Web Server suffers from a vulnerability while processing a user-supplied cookie, specifically the UserID parameter, which allows the attacker to cause a buffer overflow and result a crash or gain arbitrary code execution under the context of the user. This was originally discover...
The vulnerability of the Apache HTTP Server’s virtualization software, Centreon VM, allows attackers to disclose protected information.
The vulnerability of the Apache HTTP Server’s virtualization software, Centreon VM, is related to errors in cookie file processing. Exploiting this vulnerability allows a remote attacker to disclose sensitive information...
"Misfortune Cookie" Broadband Router Vulnerability
Broadband routers employing the Allegro RomPager firmware prior to versions 4.34 contain a vulnerability in HTTP cookie processing code. Exploitation of this vulnerability could allow a remote attacker to take control of an affected device. Users and administrators are encouraged to review...
kernel: sctp: duplicate cookie handling NULL pointer dereference
The sctpsfdo524dupcook function in net/sctp/smstatefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service NULL pointer dereference a...
PHPCMS V9 sys_auth()multiple SQL injection vulnerabilities-vulnerability warning-the black bar safety net
by Flyh4t mail: phpsechotmail.com A description of Syria: the phpcms use sysauth function plus decryption of the cookie information,system more files directly from the cookie in the Get variables into the program flow. Due to the sysauth function in the design and use of the process in the presen...
Low: Red Hat Security Advisory: tomcat security update for Red Hat Network Satellite Server
Updated tomcat packages that fix several security issues are now available for Red Hat Network Satellite Server 5.2 and 5.3. This update has been rated as having low security impact by the Red Hat Security Response Team. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pag...
Important: Red Hat Security Advisory: tomcat security update
Updated tomcat packages that fix several security issues are now available for Red Hat Developer Suite 3. This update has been rated as having important security impact by the Red Hat Security Response Team. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP...
Important: Red Hat Security Advisory: tomcat security update
Updated tomcat packages that fix several security issues are now available for Red Hat Application Server v2. This update has been rated as having important security impact by the Red Hat Security Response Team. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP...
RHEL 5 : tomcat (RHSA-2009:1164)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:1164 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. It was discovered that the Red Hat Security...
CVE-2002-0369
Buffer overflow in ASP.NET Worker Process allows remote attackers to cause a denial of service restart and possibly execute arbitrary code via a routine that processes cookies while in StateServer mode...
Microsoft ASP.NET buffer overflow
Buffer overflow on state cookie processing...
Buffer overflow in Talentsoft Web+
Buffer overflows in CGI supplied applications, cookie processing...